Research on Web Application Vulnerability Scanning Technology Based on Active and Passive Combination
Download as PDF
DOI: 10.25236/isaiee.2020.015
Author(s)
Yonggang Li, Min Han, Aiyi Cao, Shanmin Pan
Corresponding Author
Yonggang Li
Abstract
With the construction of the ubiquitous power Internet of Things in our country, web applications have gradually replaced client applications in the power industry, and security incidents in which attackers use web application vulnerabilities to conduct malicious attacks are increasing. In order to ensure the security of power web applications, it is increasingly important to find and repair web application vulnerabilities in a timely manner. This paper proposes a combination of active and passive power web application vulnerability scanning technology. It combines active scanning technology and passive scanning technology based on network intelligent crawlers to quickly and comprehensively obtain vulnerability information and improve the efficiency and coverage of power web application system vulnerability detection.
Keywords
Power web application system, Web Crawler, Passive scanning, Vulnerability detection